Mitigation Techniques Analysis
Mitigation Techniques:
1. Establish a Wireless Security Policy.
Gartner study shows that security risks are more from internal users than from external users. Many a time people creates security risks to network simply because of ignorance. While securing a wireless network, we need to create a wireless security policy and train users before they start using wireless network.
The security policy should include “Acceptable uses”, Uses of “Antivirus”, use of “Host based Intrusion Prevention System”
2. Separate the Wireless LAN from Wired Network
Many of organizations are bridging the wireless network with the wired network. It doubles the security risk. Anyone connecting to the wireless network gets easy access to the wired network.
We need to create a separate wireless network from the wired network. Keep the wireless network in a separate …show more content…
And restrict direct communication from Wireless VLANs to the Wired data VLANs.
3. Set up separate WLAN (SSID/VLAN) for Guest access
Many times organizations use the same wireless SSID for corporate wireless user’s access to the corporate resources and the Guest user’s access to the internet.
We need to create separate these two types of user’s wireless access. We propose to create two separate SSIDs. One SSID “Corporate” which will have access to the internal resources. Another SSID “Guest” which will be limited to internet access only and restricted from accessing the internal resources.
4. Secure the Wireless LAN, Use strong wireless encryption. Use of RADIUS and certificate services
WPA is easily breakable and we will always avoid using them. We will prefer to setup an internal RADIUS server and also configure internal certificate services. All version of windows servers can act as RADIUS server and also provide Certificate services. The feature in windows server is named and Network Policy
1. Establish a Wireless Security Policy.
Gartner study shows that security risks are more from internal users than from external users. Many a time people creates security risks to network simply because of ignorance. While securing a wireless network, we need to create a wireless security policy and train users before they start using wireless network.
The security policy should include “Acceptable uses”, Uses of “Antivirus”, use of “Host based Intrusion Prevention System”
2. Separate the Wireless LAN from Wired Network
Many of organizations are bridging the wireless network with the wired network. It doubles the security risk. Anyone connecting to the wireless network gets easy access to the wired network.
We need to create a separate wireless network from the wired network. Keep the wireless network in a separate …show more content…
And restrict direct communication from Wireless VLANs to the Wired data VLANs.
3. Set up separate WLAN (SSID/VLAN) for Guest access
Many times organizations use the same wireless SSID for corporate wireless user’s access to the corporate resources and the Guest user’s access to the internet.
We need to create separate these two types of user’s wireless access. We propose to create two separate SSIDs. One SSID “Corporate” which will have access to the internal resources. Another SSID “Guest” which will be limited to internet access only and restricted from accessing the internal resources.
4. Secure the Wireless LAN, Use strong wireless encryption. Use of RADIUS and certificate services
WPA is easily breakable and we will always avoid using them. We will prefer to setup an internal RADIUS server and also configure internal certificate services. All version of windows servers can act as RADIUS server and also provide Certificate services. The feature in windows server is named and Network Policy